📦 Calc

Name: Calc
Rating: 10

v1.0.0

Perform mathematical calculations from the command line. Arithmetic, trig, and unit conversion.

10· 10·0 当前·0 累计

by @dinghaibin (BIN)

测试工具数据与API 数据库

下载技能包项目主页

安全扫描

VirusTotal

可疑

查看报告

OpenClaw

可疑

high confidence

The 技能 is a legitimate 命令行工具 calculator, but its implementation unsafely calls Python eval on raw expressions which can 执行 arbitrary code — a dangerous vulnerability that makes the 技能 suspicious.

评估建议

Do not 运行 this 工具 with untrusted 输入 or as a privileged user. The calc implementation uses Python eval on raw expressions, which can 运行 arbitrary Python code (not just math); this can be exploited to 执行 shell commands, read files, or modify the 系统. Before 安装ing or using: (1) inspect or 运行 the script in an isolated 环境 (contAIner/VM) if you must test it; (2) prefer a fixed safer implementation (use a math expression 解析器 or a sandboxed evaluator like asteval/numexpr or 解析 the AST and white列出 nodes/f...

详细分析 ▾

✓ 用途与能力

Name, description, 技能.md examples, and the included scripts/calc.py align: this is a command-line calculator implementing arithmetic, trig, and unit conversion. It 请求s no 凭证s, binaries, or 安装 steps beyond being 运行 as a script.

⚠ 指令范围

SKILL.md 指示 agent/user 用表达式运行 calc-tool。实现（scripts/calc.py）先进行简单字符串替换，再用 Python 的 eval 计算用户输入，但未限制允许的操作或 AST 节点。因此注入输入（如 __import__('os').system(...)）可执行任意 Python，从计算器升级为远程/主机入侵。说明中既未警告该风险，也未限制输入。

✓ 安装机制

There is no 安装 spec (instruction-only 技能 with an included script). Nothing is 下载ed or written to disk by an 安装er, which is low-risk in itself.

✓ 凭证需求

No 环境 variables, 凭证s, or config paths are 请求ed. The declared requirements are minimal and proportional to a 命令行工具 calculator.

✓ 持久化与权限

The 技能 does not 请求 always:true or other elevated persistence. Default autonomy is allowed (normal), and the 技能 does not modify other 技能s or 系统-wide 代理设置tings.

⚠ scripts/calc.py:33

Dynamic code execution 检测ed.

安全有层次，运行前请审查代码。

运行时依赖

无特殊依赖

安装命令

点击复制

官方npx clawhub@latest install calc-tool

镜像加速npx clawhub@latest install calc-tool --registry https://cn.longxiaskill.com

技能文档

Calc 工具 - 命令行工具 Calculator

Command-line calculator supporting arithmetic, trig, and unit conversion.

Quick 启动 calc-工具 '2 + 2'

Features Basic arithmetic Trig functions (sin, cos, tan) Unit conversion Expression grouping Examples calc-工具 '2 + 2' calc-工具 'sin(45) * 10' calc-工具 '100 cm to inches'

See Also Related documentation: man bc (if avAIlable)

数据来源：ClawHub ↗ · 中文优化：龙虾技能库